Cyber Assurance Manager

Overview

Lumanity is dedicated to improving health outcomes by accelerating and optimizing access to life-changing medicines. As a global strategic partner that brings together strategy, evidence, engagement, and technology, we were designed to engineer breakthrough value to tackle our clients' toughest challenges by revolutionizing how value is generated, demonstrated, and communicated.

The Cyber Assurance Manager is responsible for the operational delivery of cyber assurance activities across Lumanity. The role provides hands-on execution of client assurance, audit preparation, evidence management, and third-party assurance activities, ensuring the organisation can consistently and efficiently meet growing client and regulatory expectations.

This role is critical to protecting revenue, supporting sales cycles, and maintaining certifications by ensuring cyber assurance activities are delivered to a high standard without reliance on senior executives for day-to-day operational tasks including:

• Client Assurance & Questionnaires: Includes, but not limited to:
  Lead the preparation and coordination of responses to client security questionnaires, RFP security sections, and due diligence requests, maintain standardized response libraries and partner with internal teams to validate responses and supporting materials.
• Audit & Certification Support: Prepare and maintain audit evidence for ISO 27001 and ISO 42001 certifications and coordinate internal audits, external auditor requests, and audit schedules.
• Assurance Operations & Reporting: Includes, but not limited to:
  Maintain assurance documentation, control evidence, and compliance records, provide incidence response support, produce regular assurance metrics, plan and execute cyber security awareness training modules.
• Third-Party & SOC Coordination: Coordinate assurance activities with the managed Security Operations Centre (SOC) and key security vendors and support third-party risk assessments.
• Continuous Improvement: Identify opportunities to streamline assurance processes, tooling, and documentation and support integration of newly acquired entities into the Group assurance framework.

• 3+ years' experience in cyber security assurance, compliance, or risk management roles.
• Experience managing an ISMS and overseeing ISO 27001 controls, audit processes, and evidence management
• ISO 420001 experience is desirable but not required
• CISM and/or CISSP preferred but not required
• Prior facilitation and participation in internal and client audits
• Involvement in due diligence assessments
• Strong organisational and communication skills with attention to detail.
• Comfortable working across distributed teams and multiple geographies.

• Competitive salary plus annual bonus scheme
• Private health insurance plus enhanced dental and optical cover
• Generous pension scheme
• XX days paid holiday
• Enhanced maternity and paternity pay for employees with 2+ years of service
• Access to comprehensive Mortgage Advisor Service
• Group income protection
• Life assurance coverage at 4x base salary
• EV car scheme and more